
Senior Architectural Engineer
Posted Jun 21

Posted Jun 21
This is a fully remote position, open to applicants in Texas.
• Design and oversee AWS IAM policies, roles, and permissions to implement least privilege principles and secure access in multi-account environments.
• Conduct regular audits of IAM configurations to ensure adherence to NIST CSF, HITRUST, HIPAA, SOC 2, and GDPR standards.
• Automate the workflows for IAM provisioning and de-provisioning using tools like Terraform, CloudFormation, or Ansible.
• Resolve IAM-related issues, such as access failures, policy conflicts, and authentication errors.
• Work collaboratively with security, networking, and application teams to incorporate IAM best practices into cloud deployments.
• Aid in incident response and forensic investigations by examining IAM logs and access patterns through AWS CloudTrail and Azure Monitor.
• Implement and manage AWS services, including AWS Organizations for account governance, AWS Control Tower for guardrails and account provisioning, and AWS Cognito for identity federation and user authentication.
• Support Azure IAM activities, such as implementing conditional access policies, identity protection, and integration with Active Directory.
• Bachelor’s degree in Computer Science, Management Information Systems, or a related field, or equivalent professional experience.
• Over 5 years of experience in cloud engineering with a significant emphasis on IAM in AWS and/or Azure.
• Practical experience with AWS IAM, Organizations, Control Tower, and Cognito.
• Proficiency in Infrastructure as Code tools, specifically Terraform and CloudFormation.
• Knowledge of authentication protocols, including SAML, OIDC, and OAuth 2.0.
• AWS or Azure certifications (e.g., AWS Certified Security – Specialty, Azure Security Engineer Associate) are advantageous.
• Generous, flexible vacation policy.
• Educational assistance.
• Comprehensive health benefits.
• 401(k) employer match.
• Leadership and technical development academies.
Allegion
Ibility LLC
Planexia
Get handpicked remote jobs straight to your inbox weekly.